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METHODS AND APPARATUS FOR 
PROTECTING INFORMATION CONTENT 



RELATED APPLICATIONS 

This application claims the benefit of U. S 
Provisional Application No. 60/160,603, filed October 20, 
1999. 

FIELD OF THE INVENTION 

The present invention relates to methods and 
apparatus for transmitting and storing information and, 
more particularly, to methods and apparatus for 
discouraging, and/or protecting against, the unauthorized 
copying or use of the content of transmitted and/or 
stored information, e.g., video and/or audio signals. 

BACKGROUND OF THE INVENTION 

Currently, video continues to grow in 
importance. Video is now used for entertainment, 
business and educational purposes. 

Consumer electronics (CE) devices such as 
digital video disks (DVDs), video cassette recorders, 
televisions, etc. are frequently used to record and/or 
playback video information. While many current CE video 
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devices are analog devices such as VHS VCRs, as the cost 
of digital media and digital players , such as DVD 
players, decreases, digital CE devices are likely to 
replace many of the analog devices presently in use. 

5 

Theft of copyrighted information, e.g., 
commercial videos, is a major problem. In order to 
discourage the copying of, e.g., analog video cassettes, 
many video distributors intentionally insert noise, as a 

10 "copy protection" scheme, into a synchronization portion 

of the recorded signal. While this noise normally does 
not significantly effect the viewing of the original 
cassette, copying of such cassettes using conventional 
VCRs tends to produce a copy that contains an annoying 

15 amount of flicker. The flicker results from inaccuracies 

associated with the copying process through which the 
noise included in the synchronization signal is much more 
noticeable in the copy than in the recording being 
copied. 



20 



25 



Such known copy protection schemes tend to work 
reasonably well with current analog VCRs and television 
sets because such sets are designed to work with a 
synchronization signal that is relatively noise-free. 



While CE devices are tending towards all 
digital embodiments, analog interfaces with computer 
monitors are likely to be favored over digital interfaces 
for quite some time. Generally, for a digital signal to 
30 accurately represent an analog video signal, the sampling 

rate of the digital signal must be at least twice the 



-3- 



highest frequency component of the analog signal being 
represented. Accordingly, to accurately represent high 
frequency analog video signals, extremely high sampling 
rates and digital signal processing rates must be 
5 supported. 

Because of the high signal processing rates 
that must be supported by digital monitors to display 
comparable video signals applied to an analog monitor, 

10 analog signal processing circuitry included in display 

devices has tended to be less expensive to implement than 
digital circuitry. For this reason, among others, analog 
video signals have generally been preferred to digital 
video signals for monitor/computer connections. Analog 

15 video signals, e.g., VGA signals, usually include, 

red (R) , green (G) , blue (B) color signals, horizontal 
synchronization (HS) signal, and vertical synchronization 
(VS) signals. Analog interconnects for such signals, 
e.g., monitor cables, generally include at least one line 

20 for each of the R, G, B, HS, and VS signals and at least 

one line for monitor plug-and-play (PP) signals. Two PP 
lines are common. A nine pin DB-9 connector has become a 
common connector for connecting analog monitors, e.g., 
VGA monitors, to computer graphics cards and adapters. 

25 

Today, many computer monitors are analog 
"multi-sync" monitors. Such monitors are designed to 
automatically synchronize to a plurality of signals of 
different frequencies. Because such computer monitors 
30 are designed to handle synchronization signals of 

multiple frequencies, they are far more flexible than 
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conventional television sets at handling noise and/or 
slight frequency affects in synchronization signals. For 
this reason, conventional analog video copy protection 
techniques, such as that described above, are generally 

5 ineffective when applied to video signals supplied to 

analog multi-sync computer monitors. 

In addition to DVDs, digital high definition 
televisions are likely to become common in the next few 
years as digital television broadcasts begin and the 

10 price of digital television sets decreases. 

In order to reduce the risk of unauthorized 
copying of copyrighted works, several companies, 
including Hitachi, Ltd., Sony, Intel, and others have 

15 proposed an industry standard for digital consumer 

electronics devices which involves the use of 
authentication and key exchange procedures along with 
data encryption and the use of a digital communication 
bus which complies with IEEE standard 1394. The bus is 

20 sometimes referred to as "1394 Firewire". The proposed 

standard, hereinafter referred to as the "5C Standard", 
is discussed in the 5C Digital Transmission Content 
Protection White Paper White Paper , Revision 1.0, dated 
July 14, 1998. 

25 

The 5C standard includes several features. 
Four such features are : 

(1) Copy control requests - A source device can 
request a destination device to honor copy control 
30 requests including copy-never, copy- free, and copy-once 
requests . 
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(2) Use of certificates - A destination device 
proves its trustworthiness to a source device by- 
presenting a digital certificate, e.g., an authentication 
key, and using a corresponding private key for 

5 communications with the source device. The certificate 

is issued by a certifying authority that has examined the 
destination device to determine that it will honor the 5C 
Standard copy control requests. 

(3) A key exchange protocol - The protocol is used 
10 by the source and destination devices once the 

destination device has proved that it is certified to 
establish a session key (content encryption key) used for 
encrypting copyrighted information to be exchanged, 

(4) Transmission of copyrighted information in 

15 encrypted form - Information subject to copy restriction 

requests is transmitted in encrypted form using the 
session key. 

In the proposed standard, a central authority 
20 is responsible for reviewing and certifying devices as 

complying with 5C Standard copy control requests. 

FIG. 1 illustrates conventional device 100 for 
implementing the 5C Standard. Device 100 includes 

25 authentication and key exchange subsystem 116, optional 

system renewal subsystem 114, content cipher 
subsystem 120, IEEE 1394 bus interface 118, storage 
device 112 for storing video data to be transmitted as 
well as received video data, and digital bus 122 which is 

30 1394 compliant. 
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In this system, authentication messages, system 
renewal messages, authentication keys, exchange keys and 
session keys, in addition to encrypted data, are passed 
between the system 100 and other devices via the bus 122. 
5 Interface 118 is responsible for electrically interfacing 

between bus 122 and system elements, such as 
authentication and key exchange subsystem 116 content 
cipher subsystem 120. The authentication and key 
exchange subsystem receives and exchanges, via bus 122, 

10 authentication and key information as well as system 

renewal messages. The content cipher subsystem is 
responsible for encrypting video information prior to 
transmission and decoding received encrypted information 
using content keys provided by authentication and key 

15 exchange system 116, to the cipher subsystem. 

Storage 112 stores un-encrypted video data, 
copyright status and system renewal information. The 
system renewal and copyright status information is 
20 provided to authentication and key exchange 

subsystem 116. The video residing in the storage device 
112 is supplied to, or received from, the content cipher 
subsystem which is responsible for encoding/decoding 
video information passed over bus 122 . 

25 

In the conventional device, copy protection 
status information is included in an initial transmission 
of data between devices along with authentication 
information, e.g., authentication keys. Copy protection 
30 status information indicates that encrypted data can be 

copied freely, copied for one generation 
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(copy-one-generation) , never copied (copy-never) or is 
subject to a no more copies constraint (no-more-copies) . 
An authentication key is established during 
authentication, which occurs at the beginning of each 

5 exchange of encrypted information between source and 

destination devices. The authentication key is used to 
encrypt an exchange key. The exchange key is used to 
establish and manage security of copyrighted content 
streams. A content (session) key is exchanged between 

10 source and destination devices in conventional 

device 100. The content key is used to encrypt/decrypt 
the content being exchanged. Authentication and key 
exchange subsystem 116 provides the content key, 
associated with a particular communication, to content 

15 cipher subsystem 12 0 for use in encoding/decoding the 

content being transmitted or received. 



The 5C Standard was designed primarily for 
digital CE devices. A housing of such devices can 

20 normally be sealed in such a manner as to make access to 

the inside of the device difficult particularly since 
consumers rarely need access to the insides of devices 
such as television sets and VCRs . Furthermore, an amount 
of control a consumer can have over the data processing 

25 performed by most CE devices can be limited to a set of 

preselected operations, e.g., play, reverse, stop, etc. 

Computer owners are accustomed to having easy 
access to internal components of their systems for 
30 upgrading and component replacement purposes. 

Accordingly, in most cases it would be unacceptable to 



-8- 



seal computer housings in such a manner as to deny the 
owner easy access to internal components of his (her) 
computer system. In addition, one strength of a personal 
computer is that it can run arbitrary programs that can 
5 interact at a low- level with computer hardware and an 

operating system. Practically, this means that if 
unencrypted bits flow through a computer system, often a 
process can be crafted to steal, e.g., copy, them. 

10 For this reason, computers generally raise more 

concerns with regard to potential pirating of 
copyrighted information than, e.g., televisions and other 
CE products. Because of the ease with which copyrighted 
data can be copied by computer systems, it is unlikely 

15 that computer systems, e.g., personal computers (PCs), 

are likely to be certified as devices which implement the 
5C Standard copy control requests with sufficient 
certainty to support issuance to it of a 5C certificate. 
Without such a certificate, a device will be unable to 

20 interact and exchange copyrighted information subject to 

copy constraints with 5C Standard CE devices. The likely 
inability for a computer system, as a whole, to be 
certified as a 5C Standard compliant device poses the 
threat that, in the future, computer systems will be 

25 unable to interface with many CE devices. 

Another threat to computer system and CE device 
interoperability has been created by the film industry. 
A least one major film studio has threatened to refuse 
30 licensing high-resolution video if such video will be 

transmitted on unencrypted analog interconnects. 
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If copyright owners maintain such a position, 
it would preclude computer devices from transmitting HDTV 
to monitors using unencrypted analog lines. The purpose 

5 of this 5C Standard is to secure upcoming high-resolution 

video formats by making it difficult for individuals to 
connect recorders into the analog stream between a video 
player and the monitor. A problem with this standard is 
that it will increase the costs of monitors and video 

10 cards . 

Unfortunately, an inability to receive 
certification for a computer system as 5C compliant would 
prevent that system from displaying copy retrieved movies 
15 and other high definition video content where the video 

is transmitted to a monitor using conventional 
unencrypted analog monitor interconnects. 

In view of the above discussed threats to 
20 computer system/CE device interoperability, a need now 

exists for methods and apparatus that would allow a 
computer system, or at least a portion of a computer 
system, to interface and exchange data with 5C Standard 
devices subject to copy restrictions. In addition, a 
25 need also exists for methods and apparatus of 

implementing some form of encryption or scrambling of 
video signals on analog interconnects to address concerns 
of copyright owners regarding unauthorized copying of 
analog signals. From a commercial standpoint, it is 
30 desirable that any new methods and apparatus be at least 
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somewhat backward compatible and be capable of being 
implemented at a reasonable cost . 

SUMMARY OF THE PRESENT INVENTION 

5 

The present invention is directed to methods 
and apparatus for preventing the unauthorized copying or 
use of the content of transmitted and/or stored 
information, e.g., video and/or audio signals. As 
10 discussed above, it is unlikely that computer systems, as 

a whole, will be able to qualify for and obtain 
certificates indicating 5C Standard compliance. 

To partially counter this difficulty, one. 
15 feature of the present invention is directed to rendering 

at least one component of a computer system capable of 
obtaining a 5C certificate thus allowing that component 
to interact with 5C Standard compliant devices. 

20 In accordance with our specific inventive 

teachings, a display adapter, e.g., an MPEG video card, 
is rendered 5C Standard compliant, hence forming a 
"secure video card". This adapter includes an interface 
for coupling the card to a digital bus, e.g., 1394 

25 Firewire, used to couple 5C standard devices such as a 

DVD player, to other 5C Standard compliant devices. The 
interface of the secure video card is also coupled to a 
bus within the computer system. However, to guard 
against unauthorized copying of copyrighted information 

30 subject to 5C Standard copyright restrictions, such 

information is only allowed to be passed external to the 
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video card, e.g., to a hard disk for storage, in 
encrypted form. A content encryption key is maintained 
on the secure video card, thereby precluding decoding of 
the encrypted data, once stored, or its copying. 

In this manner, a video card can qualify for a 
5C certificate and the computer system incorporating the 
video card can be used to receive, copy, distribute and, 
in some cases, display copyrighted content subject to 5C 
Standard copy restrictions. 

Our inventive secure video card is designed to 
be tamper-resistant and to prevent easy access to 
unencrypted signals, e.g., it may be coated with an epoxy 
material. Processing of the copyrighted information 
subject to the 5C Standard copyright constraints, in 
unencrypted form, is restricted, to occurring just on the 
card. In this way, many of the concerns copyright owners 
harbor concerning information being stolen, as the result 
of processing by the main CPU of a PC, can be avoided. 

In addition to addressing 5C Standard 
compliance issues, our present invention addresses the 
concerns some copyright owners have regarding the 
transmission of video signals over analog lines. 

In accordance with our inventive teachings, 
analog video signals are transmitted from a source 
device, e.g., a video adapter, to a destination, e.g., 
display device such as, a monitor, over a plurality, 
e.g., three, video signal lines. Prior to transmitting 
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information to the destination device, the identity of 
the destination device is confirmed via receipt, by the 
source device, of a certificate, e.g., authentication 
key, assigned to the destination device by a central 
5 authority. A session key, used as a content encryption 

key, is then generated and exchanged between the source 
and destination devices. The source and destination 
devices each includes a pseudo- random number generator 
that is driven by the session key. The three video 

10 signal lines, which are used to transmit the red, green 

and blue analog video signals, are changed, e.g., 
swapped, on a periodic basis as a function of the output 
of the pseudo- random number generator in the source 
device. In one embodiment, the red, green and blue 

15 signals are also altered, e.g., encrypted, by multiplying 

signal values by coefficients produced by the 
pseudo- random number generator thereby frustrating any 
decoding of these video signals by detecting correlations 
among the signal values. An input to the pseudo-random 

20 number generator in the destination device is 

synchronized with the random number generator in the 
source device via the exchange of session keys. The 
number generator in the destination device drives a 
decryption circuit which performs an inverse swapping and 

25 multiplying operation to that performed by the source 

device, thereby re -generating the analog red, green and 
blue color signals. In this manner, the video signals 
received on the three analog lines can be properly 
recombined to form proper red, green and blue video 

30 signals. 
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Our inventive video adapter can detect when it 
is coupled to a display device when the latter is also 
implemented in accordance with our present invention. 
When connected to a conventional display device, e.g., a 
5 monitor, the video adapter limits its display output to 
non-encrypted analog video signals which do not include 
information subject to a restriction precluding 
transmission over unencrypted analog transmission lines. 
When connected to a display device that has been 

10 implemented in accordance with the present invention, the 

video adapter generates encrypted analog video signals 
and periodically exchanges a session key with the display 
device, which, in turn, is used for decoding the 
transmitted video signals. Thus, our inventive display 

15 adapter provides some degree of backwards compatibility 

in that it can be used with existing monitors and with 
new display adapters that embody our present invention. 
In addition, since the display adapter can be added to 
conventional computer systems, e.g., in place of 

20 conventional display adapters, our inventive adapter 

provides a way of adding 5C Standard compatibility and 
new display features, but with very few modifications, to 
an existing computer system. 

25 BRIEF DESCRIPTION OF THE DRAWINGS 

The teachings of the present invention can be 
readily understood by considering the following detailed 
description in conjunction with the accompanying 
30 drawings, in which: 
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Fig. 1 depicts a block diagram of a 
conventional device capable of implementing the proposed 
5C standard for secure communication of information in 
consumer electronic devices; 

5 

Fig. 2 illustrates a computer system 
implemented in accordance with one embodiment of our 
present invention; 

10 Fig. 3 illustrates a display adapter and 

display device coupled together in accordance with our 
p r e s ent invent i on ; 

Fig. 4 depicts a flow chart illustrating the 
15 operation of our inventive display adapter; 

Fig. 5 illustrates our inventive display 
adapter of the present invention in greater detail; 

20 Fig. 6 illustrates display device 247, as shown 

in FIG. 2, in greater detail; and 

Fig. 7 illustrates a matrix multiplication 
operation that may be used to encrypt video signals in 
25 accordance with one exemplary embodiment of the present 

invention. 



30 



Fig. 8 illustrates a display adapter 
implemented in accordance with another exemplary 
embodiment of the present invention. 
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Fig. 9 illustrates the steps performed by a 
video signal encryption circuit in accordance with one 
exemplary embodiment of the present invention. 

5 Fig. 10 illustrates a display device capable of 

decrypting and displaying video signals generated by the 
display adapter of Fig. 8. 

Fig. 11 illustrates the steps performed by a 
10 video signal decryption circuit in accordance with one 
exemplary embodiment of the present invention. 

Fig. 12 illustrates a value mapping circuit of 
the present invention. 

15 

Fig. 13 illustrates an encryption circuit 
suitable for use in the display adapter illustrated in 
Fig. 8. 

20 Fig. 14 illustrates a video signal decryption 

circuit suitable for use in the display device 
illustrated in Fig. 10. 

Fig. 15 illustrates a MUX suitable for use in 
25 the value mapping circuit illustrated in Fig. 12. 

DETAILED DESCRIPTION 



30 



As discussed above, the present invention is 
directed to methods and apparatus for preventing the 
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unauthorized copying or use of the content of transmitted 
and/or stored information, e.g., video and/or audio 
signals . 

5 Those skilled in the art will recognize that 

the present invention may be effected by a wide range of 
devices, other than just a personal computer (PC), and 
particularly, specific circuitry therein. Program 
modules that incorporate our inventive teachings may 

10 include routines, programs, objects, components, data 

structures, etc. that perform a task(s) or implement 
particular abstract data types. Moreover, those skilled 
in the art will appreciate that at least some aspects of 
the present invention may be practiced with other 

15 configurations, including hand-held devices, 

multi-processor systems, microprocessor-based or 
programmable consumer electronics, network computers, 
minicomputers, set- top boxes, mainframe computers, 
displays used in, e.g., consumer electronics 

20 applications, automotive, aeronautical, industrial 

applications, and the like. At least some aspects of the 
present invention may also be practiced in distributed 
computing environments where tasks are performed by 
remote processing devices linked through a communications 

25 network. In a distributed computing environment, program 

modules may be located in local and/or remote memory 
storage devices. Nevertheless, to facilitate 
understanding, we will discuss our invention in the 
context of various embodiments that would be used in a PC 

30 environment . 
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FIG. 2 and the following discussion provide a 
brief, general description of an exemplary apparatus in 
which at least some aspects of the present invention may 
be implemented. Various methods of the present invention 
5 will be described in the general context of 

computer- executable instructions, e.g., program modules, 
being executed by a computer device such as computer 
system 220 or display adapter 248. Other aspects of the 
invention will be described in terms of physical hardware 
10 such as, e.g., display adapter circuits and display 

device components . 

System 200 includes general purpose computing 
device 220 taking the form of, e.g., a PC. PC 200 may 

15 include processing unit 221, system memory 222 and system 

bus 223 that couples various system components including 
the system memory to processing unit 221. System bus 223 
may be any of several types of bus structures including a 
memory bus or memory controller, a peripheral bus, and a 

20 local bus using any of a variety of bus architectures. 

The system memory may include read only memory (ROM) 224 
and/or random access memory (RAM) 225. Basic 
input/output system 226 (BIOS) , including basic routines 
that transfer information between elements within PC 220, 

25 such as during start-up, may be stored in ROM 224. 

PC 200 may also include hard disk drive 227 for reading 
from and writing to a hard disk (not shown) , magnetic 
disk drive 228 for reading from or writing to (e.g., 
removable) magnetic disk 229 and optical disk drive 230 

30 for reading from or writing to removable (magneto) 

optical disk 231, such as a compact disk or other 
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(magneto) optical media. Hard disk drive 227, magnetic 
disk drive 228 and (magneto) optical disk drive 230 may 
be coupled with system bus 223 through hard disk drive 
interface 232 , magnetic disk drive interface 233 and a 
5 (magneto) optical drive interface 234, respectively. The 

drives and their associated storage media provide 
nonvolatile storage of machine readable instructions, 
data structures, program modules and other data, e.g., 
video data. Although the exemplary environment described 

10 herein employs a hard disk, a removable magnetic disk and 

a removable optical disk, those skilled in the art will 
appreciate that other types of storage media, such as 
magnetic cassettes, flash memory cards, digital video 
disks, Bernoulli cartridges, random access memories 

15 (RAMs) , read only memories (ROM) , and the like may be 

used instead of, or in addition to, the storage devices 
introduced above. 

A number of program modules may be stored on 
20 hard disk 223, magnetic disk 229, (magneto) optical 

disk 231, ROM 224 or RAM 225, such as, e.g., operating 
system 235, one or more application programs 236, other 
program modules 237 and/or program data 238. A user may 
enter commands and information into PC 22 0 through input 
25 devices, such as, e.g., keyboard 240 and pointing 

device 242. Other input devices (not shown) such as a 
microphone, joystick, game pad, satellite dish, scanner, 
or the like may also be included. These and other input 
devices are often connected to the processing unit 221 
30 through serial port interface 24 6 coupled to the system 

bus. However, input devices may be connected by other 
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interfaces, such as a parallel port, a game port or a 
universal serial bus (USB) -- all of which are not shown. 

A display device, e.g., monitor 247, 
5 implemented in accordance with the present invention is 

connected to system bus 223 via an interface, such as 
inventive display adapter 248. In addition to being 
coupled to monitor 247 and system bus 223, display 
adapter 248 is coupled to external DVD player 251 via 

10 IEEE 1394 standard digital data bus, e.g., 1394 

Firewire 249. Video adapter 248 can receive encoded 
video via bus 24 9 or unencoded video via, e.g., system 
bus 248. Bus 249 connects video adapter 248 directly to 
5C Standard compliant CE devices without having to pass 

15 encrypted information from a CE device through other 

computer system components. 

As will be discussed below, monitor 247 is 
capable of interacting and exchanging identification 
20 certificates (authentication keys) and session keys, in 

accordance with the present invention, with video 
adapter 24 8. 

In addition to monitor 247, PC 22 0 may include 
25 other peripheral output devices (not shown) , such as, 

e.g., speakers and printers. 

PC 22 0 may operate in a networked environment 
which defines logical connections to one or more remote 
30 computers, such as remote computer 259. Remote 

computer 259 may be another PC, a server, a router, a 
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network computer, a peer device or other common network 
node, and may include many or all of the elements 
described above relative to PC 22 0, although only memory 
storage device 250 has been illustrated in FIG. 2. The 
5 logical connections depicted in this figure include local 

area network (LAN) 251 and wide area network (WAN) 252, 
which may comprise, e.g., an intranet and Internet, 
respectively. 

10 When used in a LAN, PC 220 may be connected to 

LAN 251 through network interface card (adapter) 
("NIC") 253. When used in a WAN, such as the Internet, 
PC 220 may include modem 254 or other means for 
establishing communications over the wide area network. 

15 The modem, which may be internal or external, may be 

connected to system bus 223 via serial port 
interface 246. In a networked environment, at least some 
of the program modules depicted relative to PC 220 may be 
stored in the remote memory storage device. The network 

20 connections shown are exemplary and other means of 

establishing a communications link between the computers 
may be used. 

FIG. 3 illustrates display adapter 248 and 
25 display device 247, shown in FIG. 2, embodiment coupled 

together in accordance with the present invention. As 
illustrated, video adapter 248 can receive input from 
either system bus 223 or 1394 Firewire 249. In addition, 
video adapter 248 can receive monitor identification and 
30 video decoding synchronization information from display 

device 247 via one or more plug and play (PP) lines 312. 
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Video adapter 248 can supply video information 
to display device 247 over a plurality of analog lines, 
here color signal lines 302 , 304, 306; vertical 
5 synchronization (VS) signal line 308, and horizontal 

synchronization (HS) signal line 310. Lines 3 02, 3 04, 
306, 308, 310, 312 are typically part of a single 
multi-wire cable having a conventional DB-9 end 
connection for plugging into a corresponding DB-9 
10 connector included in an I/O interface of video 

adapter 248. As the result of the use of a conventional 
connector and pin-out arrangement, the video adapter can 
be connected to a conventional, e.g., VGA, monitor, or 
monitor 247 capable of supporting encryption. 

15 

FIG. 4 depicts flow chart 350 illustrating the 
operation of our inventive display adapter 248. 

As shown, upon power up or re- initialization, 
20 operation of display adapter 248 begins in step 352 

wherein the display adapter 248 polls any display device, 
coupled thereto, to request monitor identification 
information. The polling may be done by transmitting a 
request for monitor identification information to the 
25 device on any one of the lines 302, 304, 406, 308, 310 or 

312 and then waiting for a response from the display 
device via one or both of PP lines 312. 

Hence, after transmitting a request for 
30 identification information, display adapter 248 monitors, 



-22- 



in step 354, PPlines 312 for a response from the display 
device. 

If a response to the request is not received in 
5 a preselected amount of time (a "timeout" interval) , 

e.g., 1 second, as determined by decision step 356, 
display adapter 248 assumes that it is connected to a 
conventional analog display device, e.g., VGA monitor. 
Operation then proceeds to step 362. Through step 362, 

10 display adapter 24 8 restricts video output via the those 

analog lines (302, 304 and 306, as shown in FIG. 3) to 
video information which is not subject to a restriction 
prohibiting transmission of that information over 
unencrypted analog lines. From step 362 shown in FIG. 4, 

15 operation proceeds to step 364 wherein the lines 302, 

304, 306 are used as R, G, and B analog video lines 
respectively, with analog video information being 
transmitted over these three lines to display device 
coupled to display adapter 248. 

20 

Video output occurs in step 364 until the 
system is reset or power is turned off causing, in 
step 3 70, operation of the display adapter to stop. 

25 If, in step 356, a response to the request for 

display device identification information is detected 
within the timeout interval, then operation proceeds to 
step 358 wherein the identification information is 
examined. The identification information may be the same 

30 as or similar to the type used in the 5C Standard and 
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include a digital certificate used to confirm the 
identity of the display device. 

If the examination reveals, as determined by 
5 decision step 360, that the display device coupled to 

adapter 24 8 is not an encryption capable device, 
operation proceeds, via step 360, to step 362. 

However, if the examination in step 358 reveals 
10 that the display device is a line swapping capable 

device, operation proceeds, via step 360, to step 366. 

This latter step periodically exchanges session key and 

synchronization information with the display device. 

This may involve, for example, the display adapter 
15 transmitting synchronization and session key information 

to display device 247 on one or all of the signals 

appearing on signal lines 302, 304, 306 during a vertical 

blanking period. 

20 With the exchange of a session key, display 

adapter 24 8 is ready to produce encrypted analog video 
signals on signal lines 302, 304, 306 which connect 
display adapter 248 to display 247. These signals are 
produced and applied to display device 247 through 

25 step 368. The periodic exchange of session key and 

synchronization information, as well as the supply of 
encrypted video signals to display 247, which occur in 
steps 366 and 368, continues until operation of display 
adapter 248 or display device 247 halt in step 370, e.g., 

30 due to power being turned off or a re-set operation being 

performed. 



FIG. 5 illustrates our inventive display- 
adapter 248. Display adapter 248 may be implemented, 
e.g., as a separate plug-in card or incorporated directly 
into a motherboard of a computer system. As illustrated, 
the display adapter comprises input/output interface 402, 
video processor 404, video signal encryption circuit 406, 
I/O interface 412, memory 405, 1394 content cipher 
subsystem 414, authentication and key exchange 
system 416, pseudo-random number generator 410 and matrix 
inverter circuit 4 08 coupled together as shown. The 
display adapter may include optional system renewal 
subsystem 114 (shown in FIG. 1) coupled to authentication 
and key exchange subsystem 416. 

I/O interface 402, shown in FIG. 5, includes 
system bus interface (SBI) 402A for interfacing between 
system bus 223 and display adapter components including 
video processor 404. In addition, I/O interface 402 
includes IEEE 1394 interface 249 to facilitate 
interaction via the 13 94 Firewire 24 9 between 5C Standard 
compliant devices and various components of the display 
adapter, e.g., 1394 content cipher subsystem 414 and 
authentication and key exchange system 416. 

1394 content cipher subsystem 414 may be the 
same as, or similar to, that used in conventional known 
device 100 (as shown in FIG. 1) . Content cipher 
subsystem 414, receives, from authentication and key 
exchange subsystem 416, the content (session) key to be 
used for encoding/decoding information being processed 
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during a communication session and/or information 
relating to the encryption algorithm to be used. The 
content cipher subsystem decodes encoded data received 
via 1394 Firewire 249. Subsystem 414 also encodes data 
5 subject to copyright restrictions in accordance with the 

5C Standard prior to transmission of that data via 1394 
Firewire 249. 

I/O interface 402 serves to couple 1394 content 
10 cipher subsystem 414 to video processor 4 04 and system 

bus 223. Decoded video output produced by content cipher 
subsystem 414, copy restrictions permitting, can be 
transmitted over system bus 223 or processed by video 
processor 404. Video data processed by video 
15 processor 404 can be applied to a display via the digital 

matrix multiplier 406 and second I/O interface 412* 

In accordance with our inventive teachings, 
encrypted data received via 1394 interface 4 02B can be 

20 stored and transmitted in encrypted form in a portion of 

PC 220 which is external to display adapter 248* 
However, to do so, the session key associated with the 
encrypted data would be maintained within secure display 
adapter 248 in, e.g., non-volatile memory 405. In this 

25 manner, the video data, being in encrypted form outside 

adapter 24 8, is thus protected, from unauthorized copying 
or editing. Since the display adapter stores the session 
key, stored encrypted video information can be played 
back at some future time through this adapter without 

30 compromising data security. This allows encrypted video 

information subject to copy restrictions to be stored 
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safely, e.g., on hard disk 227 and later accessed, 
decrypted and rendered through the same display adapter. 
Doing so may be useful for some business and home 
applications where there is likely to be a delay between 
5 when copy restricted video information is received and 

ultimately viewed. 

Note that for processing traditional non-secure 
video received over the 1394 Firewire, PC 200 (see 

10 FIG. 2) may edit this video information, save to disk, 

etc. in unencrypted form. However, when operating in 
secure mode, e.g., when processing information subject to 
copy restrictions, portions of PC 200, other than the 
display adapter, act as a pipe for the encrypted data and 

15 a repository for secure content. 

Video processor 4 04, shown in FIG. 5, processes 
the received video signals, for performing various 
processing operations thereon, and controls operation of 

20 video signal encryption circuit 406. Possible signal 

processing operations include, e.g., decoding MPEG video 
data, editing data, and converting digital video data 
and/or images into analog red, green and blue video 
signals. Video processor 404 may be implemented as a 

25 digital signal processing circuit with digital-to-analog 

(D/A) converters for generating the analog output 
signals. In addition to generating the red (R) , 
green (G) , and blue (B) analog video signals, video 
processor 4 04 generates vertical synchronization signals, 

30 horizontal synchronization signals, and display 

information request signals, and also responds to 
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information provided, via plug and play line 312, by the 
display device. 

Video processor 404 is coupled to memory 405 
5 wherein various control routines 407 are stored. The 

memory may also include image processing routines. The 
control routines control video processor operation and 
display interaction, e.g., in accordance with the 
steps 350 shown in FIG. 4. 

10 

In addition to storing control routines 4 07, 
memory 405 may store authentication keys 

(certificates) 418, exchange keys 420 and content/session 
keys 422. The authentication keys are used for proving 

15 the identity of display adapter 248 to other devices. 

Exchange keys are used for encrypting messages sent to 
devices coupled to display adapter 248. Content/session 
encryption keys are used for encrypting signals 
transmitted by the display adapter to a device coupled 

20 thereto, e.g., a 5C Standard compliant device or display 

device 24 7 that implements our inventive analog signal 
encryption technique. 

Video processor 404 generates unencrypted R, G, 
25 and B video signals and also controls video signal 

encryption circuit 406 via CTRL signal. 

When operating with a conventional monitor, 
i.e., a monitor that does not support encryption of 
30 analog video signals, the video processor limits its 

analog video signal output to video signals which are not 
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subject to an analog signal encryption requirement. In 
such a case, video processor 4 04 controls video signal 
encryption circuit 4 06, via the CTRL signal, to output 
the R, G and B video signals without making alterations 

5 thereto. In such a case, the R, G and B video signals 

are output as analog video signals R' , G' and B' , 
respectively. These signals are then output via I/O 
interface 412 via corresponding signal lines 302, 304 and 
306. I/O interface 412 may include a standard monitor 

10 connection for connecting the display adapter to 

conventional display devices as well as to inventive 
display device 247. In this manner, display adapter 248 
can interact with conventional display devices. 

15 When interacting with display device 247, video 

signal encryption circuit 406 is controlled by 
processor 404 so that the analog R, G and B video signals 
generated by the video processor are encrypted to 
generate video signals R' , G' and B' , respectively. 

20 

The encryption of the analog signals is 
performed as a function of a session key generated by 
authentication and key exchange system 416. The session 
key is used to drive pseudo-random number generator 410. 

25 The output of the pseudo- random number generator can be 

used directly by video signal encryption circuit 4 06, 
e.g., in the case of self inverting matrices or, 
alternatively, it may first be processed by matrix 
inverter circuit 408. The matrix inverter circuit 

30 processes the output of the pseudo- random number 

generator to ensure that the processing performed by 
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video signal encryption circuit 406 will be the inverse 
of that performed by display device 247 when it receives 
the encrypted analog video signals. 

5 In one relatively simple embodiment, the video 

signal encryption circuit swaps, as a function of the 
pseudo- random number generator output, the R, G, and B 
video signals to generate video signals R' , G' and B' . 
Here, the signals on lines 430, specifically 430a, 430b 

10 and 43 0c, represent signals generated by switching the 

input to each line so that at any given time it is 
difficult to determine which of these three lines is 
being used to transmit the R, G, and B video signals. In 
such an embodiment, the R, G and B signals between the 

15 display adapter and monitor are pseudo- randomly swapped 

on a line-by-line basis. A session key, exchanged with 
the display device is used to drive pseudo-random number 
generator 410. Since the session key and pseudo-random 
number generation techniques are common to both the 

20 display adapter and display device, the display device 

can perform the inverse swapping operation to properly 
reconstruct the R, G and B video signals. 

It is expected that a video pirate may attempt 
25 to decrypt analog video signals, encrypted using the 

above described line swapping technique, by examining the 
R' , G' and B' video signals for inter-line correlations. 
To resist such an attempt, the signal on each of lines 
302, 304, 306 can be composed from a keyed pseudo-random 
30 linear combination of the R, G and B incoming analog 

video signals supplied to video signal encryption circuit 
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406. As a result of such a combination, simple 
inter-line correlations will not reveal coefficients used 
during encryption which otherwise could allow the pirate 
to recover the original signal. Significantly, while 
being difficult to break, our inventive encryption scheme 
can be implemented using relatively inexpensive circuitry 
that is rather simple to manufacture. 

In particular, the encryption performed on the 
received R, G and B video signals to generate 
"transformed" first (R' ) , second (G' ) , and third (B') 
video signals can be expressed as follows: 

R' = a x R + biG + CiB 
G' = a 2 R + b 2 G + c 2 B 
B' = a 3 R + b 3 G + c 3 B 

where : 

R, G and B are original color video signals; 

R' , G' , and B' are transformed "encrypted" 

first, second and third video signals; and 
and c n are coefficients generated using a 
pseudo-random number generator, e.g., 
generator 410, driven by a session key. 

Our inventive encryption and corresponding 
decryption transformations may be implemented as matrix 
multiplication operations where all or some of the matrix 
coefficients are generated by, or are a function of, the 
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output of a pseudo- random number generator driven by a 
session key. 

Such video signal encryption and decryption may 
5 be done using either digital or analog circuitry. For 

example, it may be accomplished on display adapter 248 
using digital circuitry implemented as part of a digital 
signal processor which serves as video processing 
circuit 404. In the display device, e.g., monitor, where 
10 little or no DSP circuitry may be present, the decrypting 

may be done using analog circuitry. 

Use of matrix inverter 4 08 ensures that the 
encoding/decoding operations will be the inverse of one 

15 another. It may, in some cases be easier to implement 

matrix inverter 4 08 using digital signal processor 
circuitry rather than through analog circuitry. 
Accordingly, it may be desirable to incorporate matrix 
inverter 408 into the inventive display adapter which is 

20 more likely, than the display device, to include a 

digital signal processor having extra processing 
capacity. However, if desired, matrix inverter 408 could 
be included in display device 247 as opposed to display 
adapter 248. 

25 

In accordance with our inventive teachings, a 
session key is used to drive pseudo- random number 
generator 410. However, before a session key can be 
established, as discussed above with regard to FIG. 4, 
30 display adapter 248 first verifies that the receiving 

device is a trusted display, in contrast to a pirate 



-32- 



video recorder, via the exchange of a certificate 
identifying the display device. This may be done by, 
e.g., transmitting information to the display device via 
one or more of video lines 302, 304, 306, vertical and 
5 horizontal sync lines 308, 310 and plug and play 

line 312. Information from the display device may be 
received by video processor 4 04 via plug and play 
line 312. During normal operation, session key and 
synchronization information may be transmitted to the 
10 display in the horizontal or vertical blanking portion of 

the video signals. 

Verifying the identity of the receiving, e.g., 
display, device and establishing a session key to be used 
15 for encrypting information transmitted between display 

adapter 24 8 and our inventive display 247 is similar to 
the verification and session key establishment problems 
addressed by the 5C standard. 

20 Advantageously, the same type of digital 

certificate and content key used by 5C Standard devices 
is used by our present invention. However, the 
communication between the display adapter and display is 
over one or more of lines 302, 304, 306, 308, 310, 312 

25 and not 1394 Firewire. Thus, the analog encryption 

scheme of the present invention is well suited for use in 
5C standard devices where the establishment and exchange 
of session keys as part of an analog encryption session 
may be implemented using much of the authentication and 

30 key exchange functionality provided for 5C Standard 

compliance, e.g., authentication and key exchange 
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system 416. Accordingly, our inventive analog encryption 
scheme is well suited for use in conjunction with, or as 
an enhancement to, the 5C Standard. Authentication and 
key exchange system 416 is coupled to video processor 404 
5 to facilitate use of system 416 in establishing and 

maintaining analog video encryption sessions. 

As discussed above, a session key is used to 
drive pseudo-random number generator 410 which generates 

10 coefficient values used during encrypt ion/ decrypt ion. A 
rate at which the session key is changed affects the 
level of security provided. To increase the complexity 
of cryptoanalysis required to break the encryption, as 
compared to embodiments which do not modify the session 

15 key during an established communication session, a new 

session key can be used for each scan line of an image 
being transmitted to the display. For enhanced security, 
the session key can be modified multiple times during a 
single scan line thereby varying the coefficients used to 

20 encode the video signals corresponding to a scan line. 

As discussed above, to eliminate a need for an 
inversion circuit and/or matrix inversion operation, 
self -inverting matrices may be used. FIG. 7 illustrates 
25 a matrix multiplication operation that may be performed 

by the video signal encryption circuit to encrypt R, G 
and B video signals. Reference numeral 602 indicates a 
self -inverse matrix that can be used to encrypt R, G, and 
B signals. 



30 
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From a security standpoint, the values of the 
matrix used for encryption/decryption should be such that 
the matrix remains non- singular . 

5 For decoding to accurately occur, display 

adapter and display device 247 need to be synchronized 
such that the correct session key is used for decoding 
each line of both transmitted and received video images. 
Synchronization should occur promptly after loss of 
10 synchronization, e.g., due to loss of power or a noise 

signal. One approach to maintaining synchronization is 
to periodically establish a new session key, e.g., every 
few seconds, e.g., 5 seconds. 

15 In the event display device 24 7 loses power, 

this display device can signal the display adapter via 
one of plug and play lines 312 to establish a new session 
key. 

20 Alternatively, the display device can actively 

monitor and detect loss of adapter/display 
synchronization. Specifically, the display adapter 
transmits a frame counter value to the display device 
during each vertical blanking period. The display device 

25 maintains its own count of received frames which it then 

compares to a value provided by display adapter 248. If 
a mismatch between the frame count provided by the 
display adapter and that maintained in the display device 
is detected by the latter, the display device signals the 

30 display adapter 248 to initiate a re -synchronization 

operation. 
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Having described our inventive video encryption 
method and the interaction of video adapter 24 8 and 
display device 247, we will now describe display 
5 device 247 in detail. 

FIG. 6 illustrates an exemplary embodiment of 
display device 247. This device includes I/O 
interface 502, display control logic 504 , video signal 

10 decryption circuit 506, display 523, pseudo-random number 

generator 510 and authentication and key exchange 
system 516 coupled together as shown. Display device 247 
may also include (though not shown) an optional system 
renewal subsystem coupled to authentication and key 

15 exchange system 516. 

I/O interface 502 connects various components 
of the display device to signal lines 302, 304, 306, 308, 
310 and 312 which collectively couple display device 247 
20 to display adapter 248. I/O interface 502 may include a 

standard monitor cable connector, e.g., a DB-9 connector, 
for line connection purposes. 

Display control logic 504 controls various 
25 display operations, e.g., screen width, etc. under 

control of, e.g., a stored routine, located in memory 
(not specifically shown) situated within display control 
logic 504. 

30 Control logic 504 detects synchronization loss 

and, in response, initiates re-synchronization. In order 
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to detect display adapter/display device synchronization 
loss, display control logic 504 maintains a frame count, 
as discussed above, and compares that count to frame 
count information provided by display adapter 248. If a 
5 mis-match is detected between these frame counts, control 

logic 504 initiates a re -synchronization operation which 
involves establishment of a new session key. 

Authentication and key exchange system 516 
10 interacts with display adapter 248 and stores keys 522, 

52 0, 518 used for decoding received data, communicating 
with other device and proving authenticity of display 
device 247. Certificates containing, e.g., 
authentication keys 518, are stored in a memory (also not 
15 shown) which forms part of system 516. Keys 518, 520, 

522 may be stored in non-volatile tamper-resistant 
memory, e.g., an epoxy coated memory device, to prevent 
unauthorized access to these keys. 

20 The session key established by the 

authentication and key exchange system serves as input to 
pseudo-random number generator 510. The output of the 
pseudo- random number generator is used by the video 
signal decryption circuit 506 in performing a decryption 

25 operation. The pseudo-random number generator output 

represents matrix coefficients which are used as part of 
a matrix multiplication operation performed by video 
signal decryption circuit 506. Hence, a session key 
drives the pseudo-random number generators, used for 

30 encrypting and decrypting, in display adapter 248 and 

display 247, respectively. 
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Video signal decryption circuit 506 performs, 
as a function of the pseudo- random number generator 
output, inverse processing to that performed by 

5 encryption circuit 406 of display adapter 248. In this 

manner, the signals R' , B' , G' received via lines 302, 
304, 306 are converted back into the unencrypted R, G, 
and B video signals. The unencrypted R, G and B signals 
are supplied, along with the vertical and horizontal 

10 synchronization signals, to display 523 which may be, 

e.g., a cathode ray tube (CRT) or liquid crystal 
display (LCD) . 

While the swapping of analog signals on 
15 lines 302, 304 and 306 provides a high degree of 

security, individual R, G and B signals can be encrypted 
by simply using the output of the pseudo random number 
generator 410 to provide coefficients which are used to 
modify analog signal values, e.g., amplitude values. By 
20 varying these coefficients over time and using different 

coefficients for encrypting each of the R, G and B 
signals, adequate protection against unauthorized copying 
and use may be achieved. 

25 As discussed above, in accordance with various 

embodiments of the invention, analog R, G, B video 
signals are processed, e.g., subjected to a matrix 
multiplication operation, to form encrypted R' , G' , and 
B' video signals. In such an embodiment, the R, G, and B 

30 signal combinations used to form the R' , G' and B' video 

signals may be varied as a function of the output of a 
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pseudo random number generator which supplies matrix 
coefficient values. 

In one particular exemplary embodiment the 
5 values in the matrix which are multiplied with the R, G, 

B signals are controlled so that two of the three R, G, 
and B signals are added and one subtracted to form each 
of the analog encrypted R' , G 7 , B 7 video signals. In 
such an embodiment, since each one of the transmitted 
10 encrypted analog video signals is produced from the three 

signal components, it is considerably more difficult to 
decrypt than the case where R, G, B signals are subject 
to permutation matrix as opposed to combining the signals 
to produce the encrypted R 7 , G' , B' signals. 

15 

A display adapter 848 capable of generating 
encrypted analog R 7 , G 7 and B 7 signals from unencrypted 
analog R, G, B signals, with each encrypted signal being 
a function of one or more of the unencrypted analog 

20 signals, is shown in Fig. 8. The display adapter 848 

includes many components which are the same as, or 
similar to those previously discussed with regard to Fig. 
5. Such components are identified in Fig. 8 using the 
same reference numerals as used in Fig. 5 and will not be 

25 described again in detail. Note that the display adapter 

848 includes a pseudo random number generator 810 and 
video signal encryption circuit 806 which perform similar 
functions to those of the like named Fig. 5 components. 
Due to implementation issues relating to the encryption 

30 circuit 806, and restrictions on the values which can be 

generated by the pseudo random number generator 810, 
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these circuits may be implemented using hardware and/or 
software that differs from that used to implement the 
like named circuits found in the Fig. 5 embodiment. 

5 In addition to the above discussed components, 

the display adapter 848 includes a value mapping circuit 
808 which is not present in the Fig. 5 embodiment. The 
operation of the value mapping circuit 808 will be 
discussed in detail below. 

10 

In accordance with one feature of the 
invention, the pseudo random number generator 810 
operates in response to input from the authentication and 
key exchange system 416 to periodically generate a set A' 

15 of values representing a 3x3 RLC (restricted linear 

combination) permutation matrix of 0's and l's. Since 
the matrix is a 3x3 matrix, 9 values are output by the 
generator 810 for each encryption period, e.g., the time 
during which a line of a video display is transmitted. A 

20 tenth value a, which will be discussed below, may also be 

output for each encryption period. 

As a result of restrictions on the possible 
values in the 3x3 matrix, a single 1 and two 0's will be 
25 included in each row and column of the 3x3 matrix A' . 

That is, we start from any 3x3 ordinary permutation 
matrix A' which can be used to swap the lines used to 
transmit R, G, and B signals. 
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An exemplary matrix of this type is shown 



below: 



0 1 0 

00 1 

1 00 



10 



The set A' of values generated by the pseudo 
random number generator 810 are supplied to the value 
mapping circuit 808. The value mapping circuit 808 maps 
each received 1 to -a, and each 0 to -fa, where a is an 
integer value, e.g., in the range of 1 to 10. Optionally, 
the pseudo random number generator 810 can supply a to 
the value mapping circuit 808 along with the permutation 
matrix coefficients . 



15 



20 



In one particular embodiment a is set to 1 
resulting in the mapping of l's to -1 and 0's to +1. 
This results in a set A of mapped 3x3 matrix values 
including two +l's and one -1 in each row and column of 
the matrix. 

Performing such a mapping operation on the 
exemplary matrix A' shown above, produces: 



A = 



1 -1 1 
1 1 -1 
-1 1 1 
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This is an example of a Restricted Linear Combination. 
More generally, we can in addition multiply the matrix by 
a scalar, e.g., a value in the range of 1 to 10. 

5 Note that as a result of the above discussed 

restriction on matrix coefficient values, each column and 
each row of values in the matrix includes two of the same 
values and one value that is different. Further note 
that the two matching values are positive and the other 
10 value is negative. 

The set A of mapped permutation values is 
supplied to the video signal encryption circuit 806 of 
the present invention. As in the Fig. 5 embodiment, the 

15 video signal encryption circuit performs a matrix 

multiplication through the use of, e.g., analog 
multipliers, to generate the inner product, vector V , of 
the supplied R, G, B analog video signals and the 
permutation matrix A. The matrix multiplication 

20 operation performed by encryption circuit 806 produces 

the vector V . The vector V comprises the encrypted 
analog video signals R' , G' , B' . 

As a result of the above discussed restrictions 
25 placed on permutation matrix values, each of the 

encrypted signals R' , G' and B' will be a function of 
three input signals R, G, B. This can make the encrypted 
signals harder to decrypt for unauthorized individuals 
than in the previously described embodiments. 



Given a mapped permutation matrix A: 
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Let Ai denote row I of matrix A. 





a 1 b 1 c 1 




A1 


A = 


^2 ^2 ^2 




A2 




_ a 3 b 3 c 3 _ 




A3 



5 The generation of the encrypted set of signals 

V 7 may be expressed as: 





R 




A1 




R' 


V = V * A = 


G 


* 


A2 




G' 




B 




A3 




B' 



10 

The steps 700, performed by the video signal 
encryption circuit 806 , to encrypt R, G, B video signals 
as a function of the mapped set A of permutation matrix 
values, are shown in Fig. 9 

15 

Analog video signal encryption begins in start 
step 702 wherein the mapped set A of permutation matrix 
values and the analog R, G, B video signals, representing 
the vector V, are received by the encryption circuit 806. 

20 

Then, in step 704, the inner product V' is 
generated by performing a matrix multiplication operation 
V*A. The vector V resulting from the matrix 
multiplication operation comprises analog output signals 
25 R' , G' and B 7 . In step 706, the encrypted analog video 

signals R 7 , G 7 and B 7 are output on their respective 
signal lines 430A, 430B, 430C. 
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The generation and output ting of the encrypted 
analog video signals R' , G' , B' performed in steps 704, 
706 continues until a new set of mapped permutation 
5 values is supplied to the video encryption circuit 806. 

With a new set A of mapped permutation values being 
supplied to the encryption circuit 806, encryption using 
the previously supplied permutation values is halted in 
step 708. 

10 

As in the case of the Fig. 5 embodiment, the 
permutation matrix A' , and thus mapped permutation matrix 
A, will be altered periodically in response to signals 
output by the authentication and key exchange system 416. 
15 Thus, the mapped permutation matrix used for encoding 

signals may vary periodically, e.g., from video line to 
video line or e.g., after the transmission of every n 
lines of video signals. 

20 In the Fig. 8 embodiment, as a result of the 

mapped permutation matrix values used by encryption 
circuit 806, the encrypted analog video signals R' , G' 
and B' will be a composite of the three analog input 
video signals, e.g., it may be a function of the sum of 

25 two signals minus the third signal. Because of the 

restrictions on the matrix used to generate the encrypted 
video signals R' , G' , B' , each of the original R, G, and 
B analog signals can be generated at decryption time from 
a different pair (R',G'), (G' , B' ) , (B' , R' ) of the 

30 encrypted analog video signals. As the permutation 

matrix used for encryption purposes is varied, the 
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encrypted signal pair from which the R, G, and B signals 
are generated will vary. This reflects the fact that, 
over time, as the permutation matrix is varied, the 
transmission lines used to transmit the encoded analog 
5 signals from which the R, G, and B signal components are 

reconstructed will vary. 

Having described encryption of the analog R, G, 
B video signals as performed by the display adapter 848, 
10 decoding of the generated composite encrypted R' , G' B' 

signals will now be described with reference to Figs. 10 
and 11. 

Fig. 10 illustrates a display device 947 which 

15 is capable of receiving and decrypting the R' , G' B' 

encrypted analog video signals generated by display 
adapter 848. The display device 947 includes many 
components which are the same as, or similar to, those 
previously discussed with regard to Fig. 6. Such 

20 components are identified in Fig. 10 using the same 

reference numerals as used in Fig. 6 and will not be 
described again in detail. Note that the display device 
947 includes a pseudo random number generator 810 and 
video signal encryption circuit 806 which perform similar 

25 functions to those of the like named Fig. 6 components. 

Due to implementation issues relating to the decryption 
circuit 906, and the differences in the implemented 
analog signal encryption between the Fig. 6 and Fig. 10 
embodiments, these circuits may be implemented using 

30 hardware and/or software that differs from that used to 

implement the like named circuits found in Fig. 6. 
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In addition to the above discussed components, 
the display device 947 includes a value mapping circuit 
808 which is not present in the Fig. 6 embodiment. The 
5 pseudo random number generator 810 and value mapping 

circuit 808 may be implemented using identical circuitry 
in both the display adapter 848 and display device 947, 

The authentication and key exchange system 516 
10 controls the pseudo random number generator 810 to 

operate in a synchronized manner with the display 
adapter's pseudo random number generator 810. Thus, when 
decoding received encrypted analog video signals, R 7 , G' , 
B' , the pseudo random number generator 810 is operated to 
15 generate the set of permutation matrix values A' that was 

used to encrypt the received R 7 , G 7 , B 7 signals. 

The value mapping circuit 808 performs a 
mapping operation on the set A 7 of matrix values to 
20 generate the set A of mapped permutation matrix values. 

The set A of values is supplied to the video signal 
decryption circuit 906. In embodiments where the pseudo 
random number generator 810 generates a values the 

generated a value used to originally encode the R 7 , G' , 
25 B 7 signals is also supplied by the pseudo random number 

generator 810 to the decryption circuit 906. 

Video signal decryption circuit 906 decrypts 
the received analog encrypted video signals R 7 , G 7 and B 7 
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and outputs to display 523 the decrypted analog video 
signals R, G, B. 

Decoding can be performed according to the 
5 following formula. 

Note that for purposes of implementation, the 
value 4 is used instead of 3 for defining various 
variables. Thus, during decryption, the mapped 

10 permutation matrix value A1=A1; A2=A3 and A3=A4 . 

In addition the binary representation of base 10 values 
(1,2,4) are set to correspond with signal lines (R, 6, 
B) , respectively. Let K be a 3 bit vector and let k be 
the corresponding base ten integer. Vk is the analog 

15 signal value we assign to line k, where k e {1, 2, 

4) (e.g. VI is the value for unencrypted R, V2 is the 
value for unencrypted G, V4 is the value for unencrypted 
B, and where VI is the encrypted signal R' , V'2 is the 
encrypted signal G' , V'4 is the encrypted signal B' ) . 

20 

In such an implementation, the decryption algorithm is: 

Let K denote a 3 bit vector, and let k be its integer 
value (the usual interpretation) . 

25 

for (i,j)=(l,2), (2,4), (4,1)){ 

K=~Ai && ~Aj ; \* bit by bit AND of negated values *\ 
Vk= (V' i + V j) /2 

} 
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One particular embodiment of the signal 
decryption process 750 performed by video signal 
decryption circuit 906 is illustrated in Fig. 11. In 
Fig. 11 , the value 4 is not swapped for the value 3, 
5 e.g., A3 is not set to A4, and k=3 is used to designate 

the R signal line. As illustrated the process begins in 
start step 752 wherein the set A of mapped matrix values 
including vectors Al, A2, A3 is received by the 
decryption circuit 906. The value a may also be received 
10 in start step 752. 

The decryption process is based on the fact 
that, as a result of the original permutation matrix 
restrictions and the implemented mapping process, each 

15 pair of signals (R',G'), (G',B') and (B',R') can be used 

to generate one of the uncoded R, G, and B signals. This 
can be done by simply summing the two signals in each 
pair of encoded signals and dividing by 2a, e.g., using 
analog summing and dividing circuitry. It is also based 

20 on the fact that rows in the mapped permutation matrix A, 

corresponding to the rows of the vectors in a vector pair 
(R',G'), (G',B') and (B',R')z can be compared to identify 
the uncoded analog signal which can be generated from the 
vector pair. Each encoded signal pair may correspond to 

25 one of three possible signals (R, G, B) . For the sake of 

convenience we can define a control value k, where a 
value of k=l corresponds to the signal R, a value of k=2 
corresponds to the signal G, and a value of k=3 
corresponds to the signal B. 

30 
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As will be discussed below, the control value k 
may be used to control which of the three possible signal 
lines 907, 909, 911, is used to output an uncoded video 
signal generated by the video decryption circuit 906. 

5 

The control value k, for a particular encrypted 
signal pair, can be easily determined by comparing the 
values in the corresponding rows of the mapped 
permutation matrix A, to identify the column k, where the 
10 corresponding rows have a value which agrees. 



For example, the value k for the first signal 
pair (R',G') can be found by comparing mapped permutation 
matrix vectors Al and A2 to find the column, k, in which 
15 they agree . 



The value k for 
can be found by comparing 
vectors A2 and A3 to find 
20 agree . 



the second signal pair (G' , B' ) 
mapped permutation matrix 
the column, k, in which they 



The value k for 
can be found by comparing 
vectors A3 and Al to find 
25 agree . 



the third signal pair (B' , R' ) 
mapped permutation matrix 
the column, k, in which they 



Thus, for each pair of encrypted signals 
(R' , G' ) , (G',B'), (B', R' ) , a corresponding decrypted 



30 



-49- 



analog video signal (V) and corresponding control value 
(k) is calculated as follows: 

V (R . # g' ) = (R' + G')/2a 

5 V (G . # b' ) = (G' + B')/2a 

V (B ', r<) = (B' + R')/2a 

k( R /, gm = column location where Al and A2 have matching values 

10 b') = column location where A2 and A3 have matching values 

k(B', R') = column location where A3 and Al have matching values 

The decryption process 750 performed by the 
video decryption circuit 906 is illustrated in Fig. 11. 
15 As illustrated the decryption process begins in start 

step 752 wherein the encrypted analog video signals R' , 
G' and B' are received as well as the set A of values of 
the mapped permutation matrix used to encrypt the signals 

which are to be decrypted, a is also received in step 
20 752 in embodiments where a is not fixed, e.g., set to 1. 

Operation proceeds from start step 752 to step 754 
wherein one of a first through third decrypted video 
signal V (R < /G , )f V< G ',b'> , V (B ' f r'>/ is generated for each pair 
(R',G')/ (G',B')# (B' , R' ) of encrypted video signals. 

25 

Then, in step 756, a control value k is 
generated for each of the first through third decrypted 
video signals. Then in step 758, each of the first 
through third decrypted video signals is output to the 
30 signal line indicated by the corresponding control value 
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k generated in step 756. In step 758, the decrypted 
video signal for which a control value of 1 was generated 
in step 756 is output on the R signal line 907; the 
decrypted video signal for which a control value of 2 was 
5 generated in step 756 is output on the G signal line 909; 

and the decrypted video signal for which a control value 
of 3 was generated in step 756 is output on the B signal 
line 911. 

10 The generation of the decrypted analog video 

signals, using a given set of mapped permutation values, 
stops in step 760, e.g., when a new set of mapped 
permutation values is to be used for decryption purposes. 

15 Since the values of k remain the same for a 

fixed set of mapped permutation values, the control 
values k need only be calculated once for each set of 
mapped permutation matrix values. Since analog signals 
are being decrypted, the analog summing and division 

20 process of step 754 is performed on a continuous basis 

for the duration that a set of encrypted analog signals 
is to be decrypted, using a supplied mapped permutation 
matrix A. 

25 It will be apparent that various operations 

which form part of the decryption process 750, e.g., the 
generation of the control values k, can be performed in 
parallel with the generation of the decrypted analog 
video signals V. It will also be apparent that the 

30 generation of each of the values k and the first through 

third decrypted video signals V may be performed in 
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parallel as well if desired. Alternatively, the circuits 
used to generate the decrypted analog video signals or 
the control value k, may be used on a time shared basis. 
In such embodiments the generation of each of the first 
through third decrypted video signals and/or control 
values k, will occur serially. 



10 



Various decryption examples will now be 
discussed in detail. 



Consider for example the following case where 



a = 1: 





a1 b1 d 




il - 1 E" 




A1 


A = 


a2 b2 c2 




H rh 




A2 




a3 b3 c3 








A3 



V' = 



FT 
G' 
B' 
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In such a case, decryption values will be as 



follows : 



Vq-) = [R'+G']/2; k (R , G>) =1; Thus V (R , G>) = R 
V (G , g»j = [G'+Bl/2; k (G , B>) =2; Thus V (G , B>) = G 
V.R.) = [B'+R']/2; k (B , R>) =3; Thus V (B , R1) = B 



20 Obviously, as discussed above, a different 

mapped permutation matrix A could result in a different 
assignment of the first through third decrypted analog 
signals . 



25 



Consider for example the additional exemplary 
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case where a = 1 : 





a1 b1 d 




HI 


1 1-1 




A1 




R' 


A = 


a2 b2 c2 




-i 


1!;T] 




A2 
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G' 




a3 b3 c3 
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A3 




B' 



In such a case, decryption values will be as 

5 follows: 

Vg-) = [R'+G1/2; k (R , G1 =2; Thus V (R , G>) = G 
V (G , B1) = [G' + B']/2; k (G , B>) =3; Thus V (G , B>) = B 
V (B , R)) = [B' + R']/2; k (B , R>) =1; Thus V (B , R>) = R 

An exemplary value mapping circuit 808, which 
10 may be used in the display adapter 848 and display device 

947, is illustrated in Fig. 12. The illustrated 
embodiment assumes that the 9 values in the set A' of 
permutation matrix values are supplied to the value 
mapping circuit 808 in parallel, e.g., each on a 
15 different line. 

The value mapping circuit 808 comprises first 
through third sets of multiplexers 1002, 1004, 1006 
coupled together as shown in Fig. 12. The first set of 

20 multiplexers 1002 is responsible for processing the three 

values comprising Al, corresponding to the first row of 
the matrix A. Similarly, the second and third sets of 
multiplexers 1004, 1006 are responsible for processing 
the values A2 , A3 in the second and third rows of the 

25 matrix A, respectively. 
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Each set of multiplexers 1002, 1004, 1006 , 
includes first through third multiplexers, 1010, 1012, 
1014. Each of the first through third multiplexers 1010, 
1012, 1014 is supplied at a control input, with a 
different one of the coefficient values from the vector 
Al, A2, or A3, which is to be mapped. First and second 
data inputs to the MUXes 1010, 1012, 1014 are supplied 
the value +a, -a, respectively. 



In this example, a corresponds to 1 . As 
discussed above the value a may be generated by the 
pseudo random number generator 810. Since an a of 1 is 
being used, the first data input of each MUX 1010, 1012, 
15 1014 is supplied with +1, while the second input is 

supplied with the value -1. 

The permutation matrix coefficient supplied to 
the control input of each MUX 1010, 1012, 1014 is used to 

20 determine whether the signal supplied to the first or 

second data inputs of each MUX will be output. In the 
Fig. 12 embodiment, a value of 0 supplied to a MUX 
control input will result in the signal +oc, e.g., 1 being 
output. However, a value of 1 supplied to a MUX control 

25 input will result in the signal -a, e.g., -1 being 

output. Thus, MUXes 1010, 1012, 1014 provide a 
relatively simple way to map the set A' of 0 and 1 values 
to the +a and -a values of the mapped permutation matrix 
A. 



30 
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Fig. 15 illustrates a MUX 1500 suitable for use 
as any one of the MUXes 1010, 1012 , 1014, The MUX 1500 
comprises first and second analog pass gates 1502, 1504. 
The first analog pass gate 1502 has a negated control 
5 input while the second analog pass gate 1504 has a 

standard control input. The value +a, e.g., +1, is 
supplied to the signal input of the first pass gate 1502 
while the value -a, e.g., -1, is supplied to the signal 
input of the second pass gate 1502. The outputs of the 
10 first and second pass gates are both coupled to the 

output of the MUX 1500. 

As a result of the negated input on the first 
pass gate 1502, the input signal (+1) to the first pass 
15 gate 1502 will be output by the MUX 1500 when the control 

signal input is a 0. Since the control input of the 
second pass gate 1504 is not negated, the input signal (- 
1) to the second pass gate 15 04 will be output by the MUX 
1500 when the control signal is 1. 

20 

The values generated by the MUXes 1010, 1012, 
1014 in the first through third sets of MUXES 1002, 1004, 
1006 are output as the values in the first through third 
rows of values Al, A2, A3, in the set A of mapped 
25 permutation matrix values. 

An encryption circuit 806 suitable for use as 
the encryption circuit of Fig. 8 is illustrated in Fig. 
13. As illustrated, the encryption circuit 806 includes 
30 first through third signal encryption modules 1109, 1111, 
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1113 which are responsible for generating the R' , G' and 
B' encrypted analog signals, respectively. Each of the 
first through third encryption modules includes first, 
second and third analog multipliers 1110, 1112, 1114, and 

5 an analog adder 1116, The gain of the first through 

third analog multipliers 1110, 1112, 1114 in each of the 
encryption modules is controlled by a corresponding 
mapped permutation matrix value. The values used to 
control the first through third adders of the first 

10 encryption module 1109 are the values [Al 2 , Al 2 , Al 3 ] 

which form the first row Al of the mapped permutation 
matrix A. The values used to control the first through 
third adders of the second encryption module 1111 are the 
values [A2 X , A2 2 , A2 3 ] which form the second row A2 of the 

15 mapped permutation matrix A. The values used to control 

the first through third adders of the third encryption 
module 1113 are the values [A3i, A3 2 , A3 3 ] which form the 
third row A3 of the mapped permutation matrix A. 

20 The signals output by a decryption module's 

first through third analog multipliers 1110, 1112, 1114 
are summed by the analog adder 1116. In this manner, the 
encrypted analog video signal R' is generated by the 
first encryption module 1109, the encrypted analog video 

25 signal G' is generated by the second encryption module 

1111, and the encrypted analog video signal B' is 
generated by the third encryption module 1113. 

A video signal decryption circuit 906 suitable 
30 for use in the display device 947 is illustrated in Fig. 

14. As illustrated, the video signal decryption circuit 
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906 includes first, second and third decryption modules 
1201, 1203, 1205 each of which is responsible for 
generating one of the decoded analog R, G, B video 
signals. Which particular decryption module 1201, 1203 
5 or 12 05 will generate the R, G, or B signal at any given 

time will depend on the mapped permutation matrix A. 

Each of the first through third decryption 
modules 1201, 1203, 1205 processes a different pair of 

10 encrypted R' , G' , B' analog video signal to generate a 

decrypted analog video signal therefrom. The first 
decryption module 1201 processes the pair of encrypted 
signals (R' , G' ) , the second decryption module 1201 
processes the pair of encrypted signals (G' , B'), while 

15 the third decryption module 1205 processes the pair of 

encrypted signals (B' , R' ) . 

The decryption modules 1201, 12 03, 1205 each 
include an analog adder and divider circuit 12 02, first 

20 through third pass gates 1220, 1222, 1224 and an output 

control circuit 1210, The analog adder and divider 
circuit 1202 receives as its input the two encrypted 
video signals to be processed. If a variable a is 
supported, then the circuit 1202 also receives an a value 

25 to be used. In cases where a is fixed, e.g., at 1, the 

a input is not required. The circuit 12 02 generates a 
decrypted analog video signal by summing the two 
encrypted input signals and dividing by 2a. The decoded 
video signal is supplied to the input of each of the 

30 three pass gates 1220, 1222, 1224. 
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The first pass gate 1220 of each decryption 
module is coupled to the R signal output line, the second 
pass gate 1222 of each decryption module is coupled to 

5 the G signal output line, while the third pass gate 1224 

of each decryption module is coupled to the B signal 
output line. Each pass gate 1220, 1222, 1224 passes an 
input signal when a 1 is supplied to the control input of 
the pass gate, and blocks the input signal when a 0 is 

10 supplied to the control input of the pass gate. Thus, by 

controlling the pass gates 1220, 1222, 1224 the decrypted 
video signal generated by any one of the first, second or 
third decryption modules 1201, 1203, 1205 can be output 
on any one of the R, G, or B signal lines. 

15 

The control circuit 1210 of each decryption 
module determines to which R, G, or B output line the 
decrypted video signal produced by the module will be 
sent. The first, second and third decryption modules 
20 1201, 1203, 1205 are controlled so that they each output 

the decrypted video signal they produce to the correct 
one of the R, G, B video signal lines. 

The output line for a video signal, generated 
25 from a particular encrypted signal pair, is determined by 

comparing the corresponding rows of values in the mapped 
permutation matrix and finding the column location where 
the values agree. The control circuit 1210 does this by 
performing a bit wise ANDing operation after negating 
30 mapped permutation values included in the two rows from 
the set Al, A2, A3, which correspond to the set of 
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encoded signals being processed. Accordingly, the 
control circuit 1210 of the first decoder module 1201 
performs a bit wise ANDing operation after negating 
permutation matrix values Al, A2 . The control circuit 
1210 of the second decoder module 1203 performs a bit 
wise ANDing operation on negated permutation matrix 
values A2, A3. Similarly, the control circuit 1210 of 
the third decoder module 1205 performs a bit wise ANDing 
operation on negated permutation matrix values A3, Al. 

The ANDing operation performed by the control 
circuits 1210 produces a three bit control signal with a 
1 located at the bit location where values in the two 
rows of the mapped permutation matrix being compared 
agree. The two other bits of the resulting 3 bit signal 
will be zero. The first through third bits generated by 
the control circuit 1210 are used to control the first 
through third pass gates 1220, 1222, 1224 of the 
corresponding demodulator module. In this manner, the 
decrypted video signal generated by the decryption 
modules is routed to the proper one of the R, G, B signal 
lines . 

Various exemplary embodiments have been 
described above. In view of the description provided 
above, various modifications will be apparent to those 
skilled in the art without deviating from the inventive 
teachings described and claimed herein. 
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What is claimed is: 



1 1. A method of processing first, second and third 

2 signals for use in a system having first, second, and 

3 third signal lines, comprising: 

4 generating, using a pseudo-random number generator, 

5 pseudo-random output values; and 

6 changing, as a function of at least one of said 

7 pseudo-random output values, which ones of the first, 

8 second, and third signal lines are used to transmit the 

9 first, second and third signals. 

1 2. The method of claim 1, further comprising: 

2 modifying at least one of the first, second or third 

3 signals, as a function of said one pseudo- random output 

4 value, prior to transmission of said one signal over one 

5 of said first, second, and third signal lines. 

1 3. The method of claim 2, wherein the changing and 

2 modifying steps are performed by a matrix multiplication 

3 operation performed on the first, second, and third 

4 signals, the matrix multiplication operation utilizing 

5 matrix coefficients generated from a plurality of the 

6 pseudo-random output values* 

1 4. The method of claim 3, 

2 wherein the first, second, and third signal lines 

3 couple a source device to a destination device, said 

4 pseudo- random number generator contained within the 

5 source device, the method further comprising: 
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6 operating the source device to communicate with the 

7 destination device so as to establish a session key; and 

8 operating the pseudo-random number generator to 

9 generate said pseudo-random output values as a function 
10 of the established session key. 

1 5. The method of claim 4, wherein the first, second, 

2 and third signals correspond to color signals 

3 representing an image, the method further comprising: 

4 utilizing a different session key for each line of 

5 an image that is transmitted. 

1 6. The method of claim 5, wherein session key 

2 information is transmitted to the destination device 

3 during a video blanking period. 

1 7. The method of claim 4, wherein the destination 

2 device includes an additional pseudo- random number 

3 generator, the method further comprising: 

4 operating the destination device to perform, as a 

5 function of an output of the additional pseudo -random 

6 number generator, the inverse of the changing and 

7 modifying steps performed by the source device to restore 

8 the first, second and third signals to their original 

9 condition so as to yield restored first, second and third 
10 signals. 

1 8. The method of claim 7, wherein the first, second and 

2 third signals are analog red, green and blue color video 

3 signals, respectively, the source device is a computer 
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4 system display adapter, and the destination device is a 

5 computer monitor; the method further comprising: 

6 displaying, on a display screen included in the 

7 destination device, an image represented by restored 

8 first, second and third color video signals. 

1 9. The method of claim 1, wherein the first, second and 

2 third signal lines couple a source device to a 

3 destination device, said pseudo-random number generator 

4 being included in the source device, the method further 

5 comprising: 

6 operating the source device to communicate with the 

7 destination device to establish a session key; and 

8 operating the pseudo- random number generator to 

9 generate said pseudo- random output values as a function 
10 of the established session key* 

1 10. The method of claim 9, wherein the method further 

2 comprises, prior to establishing a session key: 

3 operating the source device to request 

4 identification information from the destination device; 

5 and 

6 if the identification information is received from 

7 the display device, determining from the identification 

8 information, if the destination device is an encryption 

9 capable device. 

1 11. The method of claim 10, further comprising: 
2 

3 if no identification information is received in 

4 a preselected period of time after requesting 
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5 identification information, restricting the output of the 

6 source device over the first, second and third lines to 

7 unencrypted video signals which are not subject to 

8 restrictions prohibiting their transmission in 

9 unencrypted form over analog transmission lines, the 

10 unencrypted video signals being fourth, fifth and sixth 

11 video signals. 

1 12. The method of claim 10, wherein the identification 

2 information received from the destination device includes 

3 a digital certificate confirming identify of the 

4 destination device if the destination device is an 

5 encryption capable device; and wherein determining if the 

6 destination device is an encryption capable device 

7 includes the act of checking the received identification 

8 information to determine if said received identification 

9 information includes said digital certificate. 

1 13. The method of claim 11, wherein the source device is 

2 a display adapter, the method further comprising: 

3 storing session keys used to encrypt video data on 

4 the display adapter; and 

5 limiting export of video data subject to copy 

6 constraints to video data that is in encrypted form. 

1 14. The method of claim 13, further comprising: 

2 interfacing with electronics devices though a 13 94 

3 interface . 

1 15. A method of generating encrypted analog first, 

2 second and third signals (R' , G' , B' , respectively) from 
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3 first, second, and third analog input signals (R, G, B, 

4 respectively) the method comprising: 

5 pseudo- randomly generating at least one of a 

6 plurality of matrix coefficients, ai, a 2 , a 3/ bi, b 2/ b 3/ 

7 c lr c 2 , c 3 ; 

8 using an encryption circuit to perform a matrix 

9 multiplication operation to generate the encrypted analog 

10 first, second, and third signals, according to the 

11 following equations: 

12 R' = aiR + b x G + CiB 

13 G' - a 2 R + b 2 G + c 2 B 

14 B' = a 3 R + b 3 G + c 3 B. 

1 16. The method of claim 15, wherein the matrix 

2 coefficients are generated such that the set of matrix 

3 coefficients ai, b x , Ci include two values which are the 

4 same and one value that is different. 

1 17. The method of claim 16, wherein the matrix 

2 coefficients are further generated such that: 

3 the set of matrix coefficients a 2 , b 2/ c 2 

4 include two values which are the same and one value that 

5 is different; and 

6 the set of matrix coefficients a 3/ b 3 , c 3 

7 include two values which are the same and one value that 

8 is different. 

1 18. The method of claim 17, wherein the matrix 

2 coefficients are further generated such that: 
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3 the set of matrix coefficients a l7 a 2/ a 3 

4 include two values which are the same and one value that 

5 is different; 

6 the set of matrix coefficients bi, b 2 , b 3 

7 include two values which are the same and one value that 

8 is different; and. 

9 the set of matrix coefficients c lf c 2 , c 3 

10 include two values which are the same and one value that 

11 is different. 

1 19. The method of claim 16, wherein the two values which 

2 are the same are positive values and the value which is 

3 different is a negative value. 

1 20. The method of claim 15, wherein the matrix 

2 coefficients are generated such that each of the R' , G' 

3 and B' signals will be the product of summing two signals 

4 in the set of analog signals R, G, B and subtracting one 

5 of the signals in the set of analog signals R, G, B. 

1 21. The method of claim 15, wherein the matrix 

2 multiplication operation includes the acts of: 

3 performing analog multiplication operations to 

4 multiply the R, G, and B signals by the coefficients ai, 

5 bi, Ci, respectively. 

1 22. The method of claim 15, wherein the first, second 

2 and third signals correspond to red, green and blue video 

3 signals, respectively. 
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1 23. The method of claim 22 performed by a source device 

2 and further comprising: 

3 communicating with a destination device to establish 

4 a content encryption key to be used as an input to the 

5 pseudo- random number generator. 

1 24. The method of claim 23, further comprising: 

2 using a different content encryption key when 

3 encrypting portions of the first, second and third video 

4 signals which correspond to different lines of an image. 

1 25. A communication method comprising the steps of: 

2 using a pseudo -random number generator to 

3 generate output values; and 

4 modifying first, second and third signals, by 

5 performing a matrix multiplication operation thereon 

6 utilizing matrix coefficients which are a function of at 

7 least one of the pseudo-random output values, the 

8 modified first, second and third signals being encrypted 

9 analog signals so as to define first, second and third 

10 encrypted analog signals; and 

11 transmitting the first, second and third 

12 encrypted analog signals to a destination device. 

1 26. The method of claim 19, wherein the matrix 

2 coefficients correspond to a 3x3 array of matrix 

3 coefficients, each row of coefficients including two 

4 coefficients of the same value and one coefficient of a 

5 different value. 
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1 27. The method of claim 26, wherein the two coefficients 

2 of the same value are positive valued coefficients and 

3 the one coefficient of a different value is a negative 

4 value coefficient. 

1 28. The method of claim 25, wherein the matrix 

2 multiplication operation includes the act of: 

3 performing a plurality of analog signal 

4 multiplication operations. 

1 29. The method of claim 28, wherein the matrix 

2 multiplication operation further includes the act of: 

3 performing a plurality of analog signal 

4 addition operations. 

1 30. The method of claim 25, wherein said matrix 

2 multiplication involves summing an integer multiple of 

3 two of the first , second and third signals and 

4 subtracting an integer multiple of another one of said 

5 first second and third signals to produce the first 

6 encrypted analog signal. 

1 31. The method of claim 25, further comprising: 

2 establishing an encryption key with the destination 

3 device; and 

4 using the encryption key as an input to the 

5 pseudo-random number generator, said one pseudo-random 

6 output value being generated as a function of the 

7 encryption key. 

1 32. The method of claim 31, further comprising: 
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2 operating the destination device to decrypt the 

3 first, second and third encrypted analog signals 

4 utilizing the encryption key, 

1 33. The method of claim 32, wherein operating the 

2 destination device to decrypt the first, second and third 

3 encrypted analog signals comprises the act of performing 

4 a matrix multiplication operation on the first, second 

5 and third encrypted analog signals utilizing matrix 

6 coefficients generated from said at least one 

7 pseudo- random output value. 

1 34. The method of claim 33, wherein the source device is 

2 a display adapter, the destination device is a display 

3 device, and the first, second and third signals are red, 

4 green and blue video signals, respectively. 

1 35. A computer readable medium comprising: 

2 computer executable instructions for controlling a 

3 computer device to perform the steps of: 

4 operating a pseudo -random number generator to 

5 generate a pseudo-random output value; and 

6 modifying first, second and third signals, by 

7 performing a matrix multiplication operation thereon 

8 utilizing matrix coefficients at least one of which is a 

9 function of the pseudo -random number output value so as 

10 to define first, second and third encrypted analog 

11 signals; and 

12 transmitting the first, second and third 

13 encrypted analog signals to a destination device. 
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1 36 . A device, comprising: 

2 a video signal encryption circuit for encrypting, in 

3 response to a pseudo- random number, red, green and blue 

4 video signals and for producing first, second and third 

5 analog encrypted video signals; 

6 a pseudo-random number generator circuit, coupled to 

7 the video signal encryption circuit, for producing the 

8 pseudo-random number value; and 

9 an input/output interface for outputting the first, 
10 second and third encrypted analog video signals. 

1 37. The device of claim 36, further comprising means for 

2 communicating with a destination device for establishing 

3 a session key to be used for encrypting and decrypting 

4 the red, green and blue analog encrypted video signals. 

1 38. The device of claim 36, further comprising, 

2 video processor circuitry for processing received 

3 video signals; 

4 an additional input /output interface for coupling 

5 the video processor to a system bus and a IEEE 1394 

6 compliant bus; and 

7 a content cipher subsystem for encrypting and 

8 decrypting information communicated over the IEEE 1394 

9 compliant bus . 

1 38. The device of claim 36, further comprising: 

2 a physically secure non-volatile memory device for 

3 storing encryption keys; and 

4 means for limiting export from the device of video 

5 data, subject to copy restrictions, received in encrypted 
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6 form over the IEEE 13 94 bus to video data that is in an 

7 encrypted form. 

1 40. The device of claim 39, wherein the video signal 

2 encryption circuit comprises a matrix multiplier for 

3 performing a matrix multiplication operation on the red, 

4 green and blue video signals. 

1 41. A method of decrypting encrypted analog signals 

2 including the steps of: 

3 generating a first decrypted analog signal from 

4 a first pair of encrypted analog signals by: 

5 summing the two encrypted analog 

6 signals in the first pair of analog signals to 

7 produce a first sum ; and 

8 dividing the first sum by a first 

9 value to produce a first decrypted analog 
10 signal. 

1 42. The method of claim 41, further comprising: 

2 generating a second decrypted analog 

3 signal from a second pair of encrypted analog signals by: 

4 summing the two encrypted analog 

5 signals in the second pair of analog signals to 

6 produce a second sum; and 

7 dividing the second sum by a second 

8 value to produce a second decrypted analog 

9 signal . 

1 43. The method of claim 42, further comprising: 
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2 generating a third decrypted analog signal 

3 from a third pair of encrypted analog signals by: 

4 summing the two encrypted analog 

5 signals in the third pair of analog signals to 

6 produce a third sum; and 

7 dividing the third sum by a third 

8 value to produce a third decrypted analog 

9 signal. 

1 44. The method of claim 43, wherein the first, second 

2 and third values are the same. 

1 45. The method of claim 44, wherein the first, second 

2 and third values are integer multiples of 2. 

1 46. The method of claim 44, further comprising the step 

2 of: 

3 periodically changing the value used for the 

4 first, second and third values as a function of the 

5 output of a pseudo random number generator. 

1 47. The method of claim 41, further comprising: 

2 comparing values in first and second rows of 

3 values to identify a first column of values in which the 

4 first and second rows of values include the same value; 

5 and 

6 controlling which one of a plurality of output 

7 lines the first decrypted analog signal is transmitted on 

8 as a function of the identified column of values. 

1 48. The method of claim 43, further comprising: 
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2 comparing values in first and second rows of 

3 values to identify a first column in which the first and 

4 second rows of values include the same value; 

5 comparing values in second and third rows of 

6 values to identify a second column in which the second 

7 and third rows of values include the same value, the 

8 second column being different than said first column; 

9 and 

10 controlling which one of a plurality of output 

11 lines the first decrypted analog signal is transmitted on 

12 as a function of the identified first column and which 

13 one of the plurality of output lines the second decrypted 

14 analog signal is transmitted on as a function of the 

15 identified second column, the first and second decrypted 

16 analog signals being transmitted on different output 

17 lines, 

1 49. The method of claim 48, wherein the first and second 

2 rows of values are first and second rows of values 

3 included in a permutation matrix used to encrypt the 

4 analog signals included in the first pair of signals. 

1 50. The method of claim 48, further comprising: 

2 comparing values in a third row of values and 

3 said first row of values to identify a third column in 

4 which the third and first rows of values include the same 

5 value; 

6 and 

7 controlling which one of a plurality of output 

8 lines the third decrypted analog signal is transmitted on 

9 as a function of the identified third column, the third 
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10 decrypted analog signal being transmitted on a different 

11 output line from said first and second decrypted analog 

12 signals. 

1 51. The method of claim 49, wherein the first and second 

2 rows of values are first and second rows of values 

3 included in a permutation matrix used to encrypt the 

4 analog signals included in the first pair of signals; 

5 wherein the second and third rows of values 

6 are second and third rows of values included in said 

7 permutation matrix; and 

8 .wherein the third and first rows of values are 

9 third and first rows of values included in said 
10 permutation matrix. 

1 52. The method of claim 48, 

2 wherein the first, second and third decrypted 

3 analog signals are red, green and blue analog video 

4 signals; and 

5 wherein the plurality of output lines include 

6 red, green and blue output lines which are coupled to a 

7 display device. 

1 53 . A method of generating an encrypted analog signal 

2 from at least two of a first analog input signal, a 

3 second analog input signal, and a third analog input 

4 signal, the method comprising: 

5 pseudo- randomly generating an encryption value; 

6 multiplying a first one of said first, second, and 

7 third analog input signals with said encryption value to 

8 produce a multiplied signal; and 
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9 combining said multiplied signal with at least 

10 a second signal generated from a second one of said 

11 first, second, and third analog input signals to produce 

12 said encrypted analog signal. 

1 54. The method of claim 53, wherein said multiplying and 

2 said combining are performed as part of a matrix 

3 multiplication operation. 

1 55. The method of claim 53, wherein said encryption 

2 value is a matrix coefficient and wherein said matrix 

3 multiplication operation is performed using analog 

4 multipliers. 

1 
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ABSTRACT OF THE DISCLOSURE 

Methods and apparatus for protecting copyrighted 
information, e.g., video signals, from unauthorized copying. 
Analog red (R) , green (G) and blue <B) video signals are 
transmitted from a source device, e.g., a display adapter, 
to a display device, e.g., a monitor, over corresponding 
analog signal lines after the identify of the destination 
device is confirmed by receipt of a certificate assigned to 
the destination device. A session key, used for encrypting 
the analog signals, is generated and exchanged between the 
source and destination devices after the identification of 
the destination device is confirmed. The source and 
destination devices each includes a pseudo-random number 
generator driven by the session key. The lines that carry 
the R, G and B video signals are changed, e.g., swapped, on 
a periodic basis as a function of the output of the 
pseudo-random number generator in the source device. The 
destination device, which has an input to its pseudo-random 
number generator synchronized with the random number 
generator of the source device, decrypts the received video 
signals in a complimentary fashion to the encryption. 
Encrypted digital information subject to copying constraints 
may be supplied to a display adapter via an IEEE 1394 
compliant bus. 
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As a below named inventor, I hereby declare: 
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below next to my name, 

I believe I am the original, first and sole inventor (if only 
one name is listed below) or an original, first and joint 
inventor (if plural names are listed below) , of the subject 
matter which is claimed and for which a patent is sought on the 
invention entitled: 

METHODS AND APPARATUS FOR PROTECTING INFORMATION CONTENT 

the specification of which: 
M is attached hereto 

□ was filed on as Application Serial 

No. with amendment (s) filed 

□ was filed as PCT international application: 

serial number on 

and was amended under PCT Article 19 on 



I hereby state that I have reviewed and understand the contents 
of the above- identified specification, including the claims, as 
amended by any amendment referred to above. 

I acknowledge the duty to disclose information which is material 
to the patentability of this application in accordance with 
Title 37, Code of Federal Regulations section 1.56. 

I hereby claim foreign priority benefits under Section 119 of 
Title 35, United States Code for the above- identified US patent 
application based on the patent or inventor's certificate 
identified below and having a filing date before that of the US 
patent application for which priority is claimed: 
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under 35 U.S.C. §119 



I hereby claim the benefit under Section 120 and/or 
Section 119(e) of Title 35 of the United States Code of any 
United States application (s) listed below and, insofar as the 
subject matter of each of the claims of this application is not 
disclosed in the prior United States application in the manner 
provided by Section 112 of Title 35 of the United States Code, 1 
acknowledge the duty to disclose material information, as 
defined in Section 1,56 of Title 37 of the Code of Federal 
Regulations, which occurred between the filing date of the prior 
application and the national or PCT international filing date of 
this application: 

Status 

Application Serial No. Filing Date Patented Pending Abandoned 
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Power of attorney: 
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Michael P. Straub (Reg. No. 36,941) 
John C. Pokotylo (Reg. No. 36,242) 
Daniel D. Crouse (Reg. No. 32,022) 
Katie E. Sako (Reg. No. 32,62 8) 

as my attorneys to prosecute this application and to transact 
all business in the United States Patent and Trademark Office in 
connection therewith. 

Direct all correspondence to Customer Number IDON601137 at the 
following address: 

STRAUB & POKOTYLO 
1 Bethany Road 
Suite 56, Building 4 
Hazlet, New Jersey 07730. 

Direct all telephone calls to: (732) 335-1222 . 
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I hereby declare that all statements made herein of my own 
knowledge are true and that all statements made on information 
and belief are believed to be true; and further that these 
statements were made with the knowledge that willful false 
statements and the like so made are punishable by fine or 
imprisonment, or both, under Section 1001 of Title 18 of the 
United States Code and that such willful false statements may 
jeopardize the validity of the application or any patent issued 
thereon. 
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